Office (OOXML) / .XLSX malware analysis — malicious · 1aa73e8f79426691

MALICIOUS

Office (OOXML) / .XLSX

23.6 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: 1208ba54ab19ea009395237ae1a8c4da SHA-1: 1460a9025c263fa4f11e5f89769d6df78c8b5ea0 SHA-256: 1aa73e8f79426691e0395964b86743d2b3647005b2e353cf996ec81fc3ee6155

60 Risk Score

Malware Insights

The file is an Excel macro-enabled document identified by ClamAV as a dropper. The heuristic indicates it's designed to download and execute a secondary payload, likely Qbot malware, upon enabling macros. No document body or script content was provided for further analysis.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.